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1. (Currently Amended) A method of handling data packets in a network device, said 

method comprising: 

receiving an incoming data packet; 

parsing the incoming data packet to obtain a portion of the incoming data packe t, the 
portion including a packet field : 

comparing said portion with rules stored in a rule table of the network device , [[where]] 
wherein each rule of said rules specifies a set of actions and includes at least one rule field, the at 
least one rule field including a rule field value, a mask, and a selection flag, the mask specifying 
a mask-specified subset of the rule field value, and wherein the comparing further includes 

applving the mask to the packet field to obtain a packet field value, and to the rule 
field value to obtain a mask-specified rule field value, and 

obtaining a comparison result by comparing the packet field value against the 
mask-specified rule field value : 

selecting a match between said portion and a particular rule of said rules , based on the 
comparison result and the selection flag, including selecting the match for the rule field when 
either the comparison result is positive and the selection flag is positive, or when the comparison 
result is negative and the selection flag is negative: and 

executing a particular set of actions specified by said particular rule^ 
wherein each rule field of said rules includes a mask and a soloction flag used in 
the comparing said portion with each rule . 

2. (Currently Amended) A method of handling data packets as recited in claim 1, wherein 

the step of comparing said portion with rules stored in a rule table comprises comparing 
specific fields of the incoming data packet with corresponding rule fields in all of the 
rules stored in the rule table. 



3. (Original) A method of handling data packets as recited in claim 2, wherein 
specific fields of the packet include a source port identification number and layer 2 to 
layer 7 headers. 
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4. (Currently Amended) A method of handling data packets as recited in claim 1, wherein 

tho stop of selecting a match between said portion and a particular rule of said rules 
comprises selecting a highest priority rule of said rules to be the particular rule when 
more than one rule of said rules match said portion. 

5. (Original) A method of handling data packets as recited in claim 4, wherein the 
highest priority rule is determined by the addresses of said rules within said rules table. 

6. (Currently Amended) A method of handling data packets as recited in claim 1, wherein 
said mask comprises an encoded compact mask and the st^-ef comparing said portion 

with rules stored in a rule table comprises: 

applying said encoded compact mask of said rule fields to corresponding fields of 
the incoming data packet to obtain [[a]] tiie packet field value; 

comparing the packet field value with [[a]] tiie rule field value contained in said one of 
said rules; and 

examining the selection flag of said one of said rule fields to determine whether 
said one of said rules is a potential match. 

7. (Original) A method of handling data packets as recited in claim 6, wherein 
each rule has at least three types of rule fields comprising: 

rule fields with a fixed location and a compact mask, 

rule fields with a fixed field location and a full mask that is as wide as the packet 
field value, and 

rule fields with a programmable field location which allows the rule field value to 
be mapped to any contiguous section of said portion of the incoming data packet. 



8. (Currently Amended) A method of handling data packets as recited in claim 6, wherein 
tho stop of applying said mask of one of the rules comprises expanding the compact mask to 
a fiill mask as wide as the packet field value and applying the fiiU mask to said portion. 
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9. (Original) A method of handling data packets as recited in claim 8, wherein the 
full mask is applied to said portion to obtain at least one of an IP destination address and 
an IP source address as the packet field value. 

10. (Currently Amended) A method of handling data packets as recited in claim 7, further 

comprising the step of examining a global programmable flag to determine whether a 
start address of the programmable field location is a beginning of a layer 2 header or a 
layer 3 header of the incoming data packet. 

11. (Currently Amended) A method of handling data packets as recited in claim 6, 
wherein the step of examining the selection flag comprises inverting the result of the comparing 
the packet field value step when the selection flag is set to a particular value. 

1 2. (Original) A method of handling data packets as recited in claim 6, wherein 
the method further comprises determining a validity of the packet field value and using 
the determination to decide whether said one of said rules is the potential match. 

13. (Currently Amended) A method of handling data packets as recited in claim 12, 

wherein the stop of determining a validity of the packet field value comprises parsing said 
portion of the data packet to determine the validity and retuming the validity result and the 
packet field value. 

14. (Currently Amended) A method of handling data packets as recited in claim 12, 
wherein the stop of determining a validity of the packet field value comprises comparing one or 
more programmable rule fields with certain packet field values in the incoming data 

packet, and, when the one or more programmable rule fields do not match, overriding 
comparison results of all other rule fields in the same rule. 



15. (Currently Amended) A method of handling data packets as recited in claim 14, 
wherein the step of comparing one or more programmable rule fields with certain packet field 
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values comprises determining how many bytes of the packet field value of the incoming 
data packet are present and indicating the rule field is not the match when mask bits of 
invalid bj^es of the rule field value are not set to zeros. 

16. (Currently Amended) A method of handling data packets as recited in claim 13, 
wherein the step of parsing said portion to determine validity further comprises determining 
whether a particular section of said portion required for a selected rule field value is 
present in the parsed portion. 

17. (Currently Amended) A method of handling data packets as recited in claim 12, 
wherein the step of determining a validity of the packet field value comprises determining that 
one of said rules is the potential match when the packet field value is invalid but the compact 
mask of the rule field is all zeros. 

1 8. (Currently Amended) A method of handling data packets as recited in claim 12, 
wherein Currently Amended determining a validity of the packet field value comprises 
determining that one of said rules is the potential match when the packet field value is invalid but 
a valid bit of the rule field is set to zero. 

19. (Currently Amended) A method of handling data packets as recited in claim 1, 
wherein th e st e p of executing a particular set of actions specified by said particular rule 
comprises modifying a header of the incoming data packet, forwarding the incoming data packet 
to a destination address, or updating a management information register. 

20. (Currently Amended) A method of handling data packets as recited in claim 19, 
wherein th e st e p of updating a management information register comprises providing a bitmap 
used to increment individual counters indicating a forwarding, dropping, or processing of 
certain types of packets. 



21. (Original) A method of handling data packets as recited in claim 19, wherein 



AMENDMENT AND RESPONSE UNDER 37 C.F.R. § 1.116 

AND APPLICANT'S SUMMARY OF EXAMINER INTERVIEW Page 6 

Serial Number: 10/076,367 Dkt: 0063-070001/BU2194 

Filing Date: Februaiy 19, 2002 

Title: METHOD AND APPARATUS FOR FLEXIBLE FRAME PROCESSING AND CLASSIFICATION ENGINE 

said particular set of actions comprises setting a flow identification for the incoming data 
packet such that the packet is classified according to a class of service. 

22. (Currently Amended) A method of handling data packets as recited in claim 1, 
wherein the step of comparing said portion with rules stored in a rule table comprises comparing 
said portion with rules stored in a rule table implemented in a static random access 

memory, with three types of rule fields and action fields all stored in each row of the 
static random access memory. 

23. (Currently Amended) A method of handling data packets as recited in claim 1, 
wherein the step of comparing said portion with rules stored in a rule table comprises comparing 
said portion with rules stored in a rule table implemented in a content addressed memory, 
where each entry of the content addressed memory includes a selection flag and a validity 

bit. 

24. (Currently Amended) A network device for handling data packets comprising: 
a rules table; 

means for receiving an incoming data packet; 

means for parsing the incoming data packet to obtain a portion of the incoming 
data packet , the portion including a packet field ; 

means for comparing said portion with rules stored in said rule table, of the network 
device , [[where]] wherein each rule of said rules specifies a set of actions and includes at least 
one rule field, the at least one rule field including a rule Field value, a mask, and a selection flag, 
the mask specifying a mask-specified subset of the rule field value, and wherein the means for 
comparing further includes 

means for applying the mask to the packet field to obtain a packet field value, and 

to the rule field value to obtain a mask-specified rule field value, and 

means for obtaining a comparison result by comparing the packet field value 

against the mask-specified rule field value ; 

means for selecting a match between said portion and a particular rule of said 
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rules , based on the comparison result and the selection flag, including selecting the match for the 

rule field when either the comparison result is positive and the selection flag is positive, or when 

the comparison result is negative and the selection flag is negative ; and 

means for executing a particular set of actions specified by said particular rulet 
wherein each rul e field of said rul e s includ e s a mask and a s e l e ction fiag us e d by 

the means for comparing said portion with e ach rul e. 

25. (Original) A network device for handling data packets as recited in claim 24, 
wherein the means for comparing said portion with rules stored in a rule table comprises 

means for comparing specific fields of the incoming data packet with corresponding rule 
fields in all of the rules stored in the rule table. 



26. (Original) A network device for handling data packets as recited in claim 25, 
wherein specific fields of the packet include a source port identification number and layer 
2 to layer 7 headers. 

27. (Original) A network device for handling data packets as recited in claim 24, 
wherein the means for selecting a match between said portion and a particular rule of said 

rules comprises means for selecting a highest priority rule of said rules to be the 
particular rule when more than one rule of said rules match said portion. 

28. (Original) A network device for handling data packets as recited in claim 27, 

wherein the means for selecting a highest priority rule determines the highest priority rule 
by examining the addresses of said rules within said rules table. 

29. (Currently Amended) A network device for handling data packets as recited in claim 
24, wherein said mask comprises an encoded compact mask and the means for comparing 

said portion with rules stored in a rule table comprises: 

means for applying said encoded compact mask of said rule fields to 
corresponding fields of the incoming data packet to obtain [[a]] tiie packet field value; 
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means for comparing the packet field value with [[a]] tiie rule field value contained in 
said one of said rules; and 

means for examining the selection flag of said one of said rule fields to determine 
whether said one of said rules is a potential match. 

30. (Original) A network device for handling data packets as recited in claim 29, 
wherein each rule has at least three types of rule fields comprising: 

rule fields with a fixed location and a compact mask, 

rule fields with a fixed field location and a fiiU mask that is as wide as the packet 
field value, and 

rule fields with a programmable field location which allows the rule field value to 
be mapped to any contiguous section of said portion of the incoming data packet. 

3 1 . (Original) A network device for handhng data packets as recited in claim 29, 
wherein the means for applying said mask of one of the rules comprises means for 
expanding the compact mask to a full mask as wide as the packet field value and means 
for applying the fiiU mask to said portion. 

32. (Original) A network device for handhng data packets as recited in claim 31, 
wherein the means for applying the full mask obtains at least one of an IP destination 
address and an IP source address as the packet field value. 

33. (Original) A network device for handhng data packets as recited in claim 30, 
further comprising means for examining a global programmable flag to determine 
whether a start address of the programmable field location is a beginning of a layer 2 
header or a layer 3 header of the incoming data packet. 

34. (Original) A network device for handling data packets as recited in claim 29, 
wherein the means for examining the selection flag comprises means for inverting the 
result of the means for comparing the packet field value, where the means for inverting 
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inverts the result when the selection flag is set to a particular value. 

35. (Original) A network device for handling data packets as recited in claim 29, 
wherein the network device further comprises means for determining a validity of the 
packet field value and decision means to decide whether said one of said rules is the 
potential match. 

36. (Original) A network device for handling data packets as recited in claim 35, 
wherein the means for determining a validity of the packet field value comprises means 
for parsing said portion of the data packet to determine the validity and means for 
returning the validity result and the packet field value. 

37. (Previously Presented) A network device for handling data packets as recited 
in claim 35, wherein the means for determining a validity of the packet field value 
comprises means for comparing one or more programmable rule fields with certain 
packet field values in the incoming data packet, and, means for overriding comparison 
results of all other rule fields in the same rule, where the means for overriding 
comparison results acts when the one or more programmable rule fields do not match. 

38. (Original) A network device for handling data packets as recited in claim 37, 
wherein the means for comparing one or more programmable rule fields with certain 
packet field values comprises means for determining how many bytes of the packet field 

value of the incoming data packet are present and means for indicating the rule field is 
not the match when mask bits of invalid bytes of the rule field value are not set to zeros. 

39. (Original) A network device for handling data packets as recited in claim 36, 

wherein the means for parsing said portion to determine validity further comprises means 
for determining whether a particular section of said portion required for a selected rule 
field value is present in the parsed portion. 
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40. (Original) A network device for handling data packets as recited in claim 35, 

wherein the means for determining a validity of the packet field value comprises means 
for determining that one of said rules is the potential match when the packet field value is 
invalid but the compact mask of the rule field is all zeros. 

41 . (Original) A network device for handling data packets as recited in claim 35, 
wherein the means for determining a validity of the packet field value comprises means 
for determining that one of said rules is the potential match when the packet field value is 
invalid but a valid bit of the rule field is set to zero. 

42. (Original) A network device for handling data packets as recited in claim 24, 
wherein the means for executing a particular set of actions specified by said particular 
rule comprises means for modifying a header of the incoming data packet, means for 
forwarding the incoming data packet to a destination address, or means for updating a 
management information register. 

43. (Original) A network device for handling data packets as recited in claim 42, 
wherein the means for updating a management information register comprises means for 
providing a bitmap used to increment individual coimters indicating a forwarding, 
dropping, or processing of certain types of packets. 

44. (Original) A network device for handling data packets as recited in claim 42, 

wherein the means for executing a particular set of actions comprises means for setting a 
flow identification for the incoming data packet such that the packet is classified 
according to a class of service. 



45. (Original) A network device for handling data packets as recited in claim 24, 
wherein the rule table is implemented in a static random access memory, with three types 
of rule fields and action fields all stored in each row of the static random access memory. 
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46. (Original) A network device for handling data packets as recited in claim 24, 

wherein the rule table is implemented in a content addressed memory, where each entry 
of the content addressed memory includes a selection flag and a validity bit. 

47. (Currently Amended) A computer program embodied on a computer readable 

storage medium encoding instructions for performing a process of handling data packets 
in a network device, wherein the computer program is configured to cause execution of 
the process when the instructions are executed, said process comprising: 
receiving an incoming data packet; 

parsing the incoming data packet to obtain a portion of the incoming data packe t, the 
portion including a packet field ; 

comparing said portion with rules stored in a rule table of the network device , [[where] J 
wherein each rule of said rules specifies a set of actions and includes at least one rule field, the at 
least one rule field including a rule field value, a mask, and a selection flag, the mask specifying 
a mask-specified subset of the rule field value, and wherein the comparing further includes 

applying the mask to the packet field to obtain a packet field value, and to the rule 

field value to obtain a mask-specified rule field value, and 

obtaining a comparison result by comparing the packet field value against the 

mask-specified rule field value ; 

selecting a match between said portion and a particular rule of said rules , based on the 
comparison result and the selection flag, including selecting the match for the rule field when 
either the comparison result is positive and the selection flag is positive, or when the comparison 
result is negative and the selection flag is negative ; and 

executing a particular set of actions specified by said particular rulet 
wh e r e in e ach rul e fi e ld of said rul e s includ e s a mask and a s e l e ction flag us e d in 
th e comparing said portion with e ach rul e. 



48. (Currently Amended) The computer program of claim 47, wherein said 
mask comprises an encoded compact mask and the istep-ef comparing said portion with 
rules stored in a rule table comprises: 
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applying said encoded compact mask of said rule fields to corresponding fields of 

the incoming data packet to obtain [[a]] the packet field value; 

comparing the packet field value with [[a]] the rule field value contained in said one of 
said rules; and 

examining the selection flag of said one of said rule fields to determine whether 
said one of said rules is a potential match. 

49. (Previously Presented) The computer program of claim 48, wherein each rule 
has at least three types of rule fields comprising: 

rule fields with a fixed location and a compact mask, 

rule fields with a fixed field location and a full mask that is as wide as the packet 
field value, and 

rule fields with a programmable field location which allows the rule field value to 
be mapped to any contiguous section of said portion of the incoming data packet. 

50. (Currently Amended) The computer program of claim 48, wherein the stop 
ef applying said mask of one of the rules comprises expanding the compact mask to a full 
mask as wide as the packet field value and applying the full mask to said portion. 

5 1 . (Previously Presented) The computer program of claim 50, wherein the full 
mask is applied to said portion to obtain at least one of an IP destination address and an 
IP source address as the packet field value. 

52. (Currently Amended) The computer program of claim 49, wherein the 
process further comprises examining a global programmable flag to determine 
whether a start address of the programmable field location is a beginning of a layer 2 
header or a layer 3 header of the incoming data packet. 



53. (Currently Amended) The computer program of claim 48, wherei n th e step 
ef-examining the selection flag comprises inverting the result of the comparing the packet 
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field value step when the selection flag is set to a particular value. 

54. (Previously Presented) The computer program of claim 48, wherein the 
process further comprises determining a validity of the packet field value and 

using the determination to decide whether said one of said rules is the potential match. 

55. (Currently Amended) The computer program of claim 54, wherei n the stop 
ef-determining a validity of the packet field value comprises parsing said portion of the 
data packet to determine the validity and returning the validity result and the packet field 
value. 

56. (Currently Amended) The computer program of claim 54, wherei n the stop 
ef-determining a validity of the packet field value comprises comparing one or more 
programmable rule fields with certain packet field values in the incoming data packet, 
and, when the one or more programmable rule fields do not match, overriding 
comparison results of all other rule fields in the same rule. 

57. (Currently Amended) The computer program of claim 56, wherein th e st e p 
ef comparing one or more programmable rule fields with certain packet field values 
comprises determining how many bytes of the packet field value of the incoming data 
packet are present and indicating the rule field is not the match when mask bits of invalid 
bytes of the rule field value are not set to zeros. 

58. (Currently Amended) The computer program of claim 55, wherein tho stop 
ef parsing said portion to determine validity further comprises determining whether a 
particular section of said portion required for a selected rule field value is present in the 
parsed portion. 



59. (Currently Amended) The computer program of claim 54, wherein th e step 
ef determining a validity of the packet field value comprises determining that one of said 
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rules is the potential match when the packet field value is invaUd but the compact mask 
of the rule field is all zeros. 

60. (Currently Amended) The computer program of claim 54, wherein tho stop 
ef determining a validity of the packet field value comprises determining that one of said 
rules is the potential match when the packet field value is invalid but a valid bit of the 
rule field is set to zero. 

61 . (Currently Amended) A network device for handling data packets, 
comprising: 

a rules table; 

a receiving unit configured to receive an incoming data packet; 
a parsing unit configured to parse the incoming data packet to obtain a portion of 
the incoming data packet , the portion including a packet field ; 

a comparing unit configured to compare said portion with rules stored in said rule table, 
of the network device , [[where]] wherein each rule of said rules specifies a set of actions and 
includes at least one rule field, the at least one rule field including a rule field value, a mask, and 
a selection flag, the mask specifying a mask-specified subset of the rule field value, and wherein 
the comparing unit is further configured to 

apply the mask to the packet field to obtain a packet field value, and to the rule 
field value to obtain a mask-specified rule field value, and 

obtain a comparison result by comparing the packet field value against the mask- 
specified rule field value ; 

a selecting unit configured to select a match between said portion and a particular 
rule of said rules , based on the comparison result and the selection flag, including selecting the 
match for the rule field when either the comparison result is positive and the selection flag is 
positive, or when the comparison result is negative and the selection flag is negative ; and 

an executing unit configured to execute a particular set of actions specified by said 
particular rulet 

wherein each rule field of said rules includes a mask and a selection flag used by 
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the comparing unit in comparing said portion with said rul e. 

62. (Currently Amended) The network device of claim 61, wherein said mask 
comprises an encoded compact mask and the comparing unit comprises: 

an applying unit configured to apply said encoded compact mask of said rule 
fields to corresponding fields of the incoming data packet to obtain [[a]] the packet field value; 

a comparison unit configured to compare the packet field value with [[a]] the rule field 
value contained in said one of said rules; and 

an examining unit configured to examine the selection flag of said one of said rule 
fields to determine whether said one of said rules is a potential match. 

63. (Previously Presented) The network device of claim 62, wherein each rule 
has at least three types of rule fields comprising: 

rule fields with a fixed location and a compact mask, 

rule fields with a fixed field location and a full mask that is as wide as the packet 
field value, and 

rule fields with a programmable field location which allows the rule field value to 
be mapped to any contiguous section of said portion of the incoming data packet. 

64. (Previously Presented) The network device of claim 62, wherein the applying 
unit comprises an expanding unit configured to expand the compact mask to a full mask 
as wide as the packet field value and an application unit configured to apply the full mask 
to said portion. 

65. (Previously Presented) The network device of claim 64, wherein the 
application unit is configured to obtain at least one of an IP destination address and an IP 
source address as the packet field value. 



66. (Previously Presented) The network device of claim 63, fiirther comprising: 
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an examination unit configured to examine a global programmable flag to determine whether a 
start address of the programmable field location is a beginning of a layer 2 header or a layer 3 
header of the incoming data packet. 

67. (Previously Presented) The network device of claim 62, wherein the examining unit 
comprises an inverting unit configured to invert the result of the comparison unit, where the 
inverting unit is configured to invert the result when the selection flag is set to a particular value. 

68. (Previously Presented) The network device of claim 62, wherein the network 
device further comprises: 

a determining unit configured to determine a validity of the packet field value; and 
a decision unit configured to decide whether said one of said rules is the potential 

match. 

69. (Previously Presented) The network device of claim 68, wherein the determining unit 
comprises a parser unit configured to parse said portion of the data packet to determine the 
validity and a returning unit configured to return the validity result and the packet field value. 

70. (Previously Presented) The network device of claim 68, wherein the 
determining unit comprises a comparer unit configured to compare one or more programmable 
rule fields with certain packet field values in the incoming data packet, and, an overriding unit 
configured to override comparison results of all other rule fields in the same rule, where the 
overriding unit is configured to act when the one or more programmable rule fields do not match. 

71. (Previously Presented) The network device of claim 70, wherein the 
comparer unit comprises a determination unit configured to determine how many bytes of 

the packet field value of the incoming data packet are present and an indicating unit 
configured to indicate that the rule field is not the match when mask bits of invalid bytes 
of the rule field value are not set to zeros. 
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72. (Previously Presented) The network device of claim 69, wherein the parser 

unit further comprises a determination unit configured to determine whether a particular 
section of said portion required for a selected rule field value is present in the parsed 
portion. 

73. (Previously Presented) The network device of claim 68, wherein the 
determining unit comprises a determination unit configured to determine that one of said 
rules is the potential match when the packet field value is invahd but the compact mask 
of the rule field is all zeros. 

74. (Previously Presented) The network device of claim 68, wherein the 
determining unit comprises a determination unit configured to determine that one of said 
rules is the potential match when the packet field value is invalid but a valid bit of the 
rule field is set to zero. 



75-78. (Cancelled) 



